Vitenskapelig Kapittel/Artikkel/Konferanseartikkel   2012

Zibuschka, Jan; Fritsch, Lothar

Publikasjonsdetaljer

Sider:

169–183

År:

2012

Lenker:

OMTALE: http://link.springer.com/chapter/10.1007/978-3-642-34210-3_12
FULLTEKST: http://dx.doi.org/10.1007/978-3-642-34210-3_12
PROSJEKT: nr.no/node/72
DOI: doi.org/10.1007/978-3-642-34210-3_12

Del av: Secure IT Systems: 17th Nordic Conference, NordSec 2012, Karlskrona, Sweden, October 31 – November 2, 2012. Proceedings (Springer, 2012)

Abstract: We present a novel approach for password/credential storage in Pseudo-SSO scenarios based on a hybrid password hashing/password syncing approach that is directly applicable to the contemporary Web. The approach supports passwords without requiring modification of the server side and thus is immediately useful; however, it may still prove useful for storing more advanced credentials in future SSO and identity management scenarios, and offers a high level of security.

Keywords. Single sign-on, authentication, syncing, hashing.